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(54) Secure two-piece user authentication in a computer network 



(57) A computer system according to the present 
invention utilizes a two-piece authentication procedure 
to securely provide user authentication over a network. 
In the disclosed embodiment of the invention, a user 
password is entered during a secure power-up proce- 
dure. The user password is encrypted by an external 
token or smart card that stores an encryption algorithm 
furnished with an encryption key that is unique or of lim- 
ited production. A network password is thereby created. 
The network password is maintained in a secure mem- 
ory space such as System Management Mode (SMM) 
memory. When the user desires to access a network 
resource such as a hard drive in a server, the network 
password is encrypted and communicated over the net- 
work. In the case of a server hard drive, the network 
password is encrypted using the server's public key (or 
another key that is known to the server). Optional node 
identification information is appended to the network 
password prior to communication over the network. The 
node identification information can be used for a variety 
of purposes, including limiting access to certain pieces 
of data to specified, users on specified machines. Once 
received by the server, the encrypted network password 
is decrypted using the server's public key. A user verifi- 
cation process is then performed on the network pass- 
word to determine which, if any, access privileges have 
been accorded the network user. Numerous other uses 
for the network password are disclosed, and permit the 
network resources to be securely compartmentalized 
with the option to have multiple user levels. The two- 
piece nature of the authentication process assures that 
if either the user password or the external token is sto- 



len, it is of little value. Both pieces are required to 
access protected resources and uniquely identify a user 
to the network. Further, a network user's identity is 
maintained when working on different machines. 
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Description 

The invention relates to security in a computer sys- 
tem, and more particularly to using a cryptographic 
token to provide two-piece user authentication in a com- s 
puter network. 

Today's businesses invest large amounts of money 
in hardware and software, and even more money is 
spent developing information contained in data files 
such as text documents and spreadsheets. Protecting 
such investments can be critical to the success and rep- 
utation of a business. Public accounts of the exploits of 
computer "hackers" - as malicious code-breakers or 
eavesdroppers are sometimes called - have therefore 
focussed and magnified corporate desires for secure 
communications and better methods of protecting data. 
The scope of the problem is undoubtedly even more 
serious than reported, given the reluctance of many 
businesses to report securrty breaches. As a result, 
security conscious users are requesting that security 
and integrity features be incorporated into their compu- 
ter networks to restrict access to data contained on hard 
drives, as well as intormaton contained in other critical 
network components 

One known approach to security involves encryp- 
tion or cryptography Oyptoyaphy is typically used to 
protect both data and comrrujnications. Generally, an 
original message or data item is referred to as "plain 
text", while "encryption" denotes the process of disguis- 
ing or altering a message in such a way that its sub- 
stance is not readily dtscernable. An encrypted 
message is called "aphertext". Ciphertext is returned to 
plain text by an inverse operation referred to as "decryp- 
tion". Encryption is typically accomplished through the 
use of a cryptographic algorithm, which is essentially a 
mathematical function. The most common crypto- 
graphic algorithms are key-based, where special knowl- 
edge of variable information called a "key" is required to 
decrypt ciphertext. There are many types of key-based 
cryptographic algorithms, providing varying levels of 
security. 

The two most prevalent cryptographic algorithms 
are generally referred to as "symmetric" (also called 
secret key or single key algorithms) and "public key" 
(also called asymmetric algorithms). The security in 
these algorithms is entered around the keys — not the 
details of the algorithm itself. This makes it possible to 
publish the algorithm for public scrutiny and then mass 
produce it for incorporation into security products. 

In most symmetric algorithms, the encryption key 
and the decryption key are the same. This single key 
encryption anangement is not flaw-free. The sender 
and recipient of a message must somehow exchange 
information regarding the secret key. Each side must 
trust the other not to disclose the key. Further, the 
sender must generally communicate the key via another 
media (similar to a bank sending the personal identifica- 
tion number for an ATM card through the mail). This 



arrangement is not practical when, for example, the par- 
ties interact electronically for the first time over a net- 
work. The number of keys also increases rapidly as the 
number of users increases. 

With public key algorithms, by comparison, the key 
used for encryption is different from the key used for 
decryption. It is generally very difficult to calculate the 
decryption key from an encryption key. In typical opera- 
tion, the "public key" used for encryption is made public 
via a readily accessible directory, while the correspond- 
ing "private key" used for decryption is known only to the 
recipient of the ciphertext. In an exemplary public key 
transaction, a sender retrieves the recipient's public key 
and uses it to encrypt the message prior to sending it. 
The recipient then decrypts the message with the corre- 
sponding private key. It is also possible to encrypt a 
message using a private key and decrypt it using a pub- 
lic key. This is sometimes used in digital signatures to 
authenticate the source of a message. 

One problem with public key algorithms is speed. 
Public key algorithms are typically on the order of 1 ,000 
times slower than symmetric algorithms. This is on 
reason that secure communications are often imple- 
mented using a hybrid cryptosystem. In such a system, 
one party encrypts a random "session key" with the 
other party's public key. The receiving party recovers 
the session key by decrypting it with his/her private key. 
All further communications are encrypted using the 
same session key (which effectively is a secret key) and 
a symmetric algorithm. 

The number of cryptographic algorithms is con- 
stantly growing. The two most popular are DES (Data 
Encryption Standard) and RSA (named after its inven- 
tors -Rivest, Shamir, and Adleman). DES is a symmet- 
ric algorithm with a fixed key length of 56 bits. RSA is a 
public key algorithm that can be used for both encryp- 
tion and digital signatures. DSA (Digital Signature Algo- 
rithm) is another popular public key algorithm that is 
only used for digital signatures. With any of these algo- 
rithms, the relative difficulty of breaking an encrypted 
message by guessing a key with a brute force attack is 
proportional to the length of the key. For example, if the 
key is 40 bits long, the total number of possible keys 
(2 40 ) is about 110 billion. Given the computational 
power of modem computers, this value is often consid- 
ered inadequate. By comparison, a key length of 56 bits 
provides 65,636 times as many possible values as the 
40 bit key. 

Much attention has been given to protecting and 
authenticating communications and data as they are 
transmitted via internal corporate networks (intranets or 
LANs) and external networks (such as the Internet). 
One known method of offering limited access to a net- 
worked computer is through the use of passwords. A 
password is typically stored in a computer's battery- 
backed CMOS RAM memory. Before the user is allowed 
access to the computer or secured computer resources, 
the user is required to enter a password. Once a pass- 
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word is entered, the computer's power-on routine com- 
pares the password to the password in CMOS memory 
and, if they match, the user is allowed access. A main 
disadvantage of this system is that certain forms of 
attack can bypass the CMOS memory because in many 
cases it is not read protected. While generally effective, 
password protection is one-piece in nature and is only 
as secure as the password itself 

Physical keys or tokens, such as those used to 
unlock a door, have also been used to permit access to 
a computer system. Like the password approach, this 
type of security is "one-piece in nature, and is compro- 
mised if the key or token is stolen. Anyone possessing 
the key can gain access to the computer network and is 
accorded the same level of access as an authorized 
user. Currently, there exists no satisfactory method of 
verifying user identity in granting access privileges in a 
distributed computing environment. 

Briefly, a computer system according to the present 
invention utilizes a two-piece authentication procedure 
to securely provide user authentication over a network. 
In the disclosed embodiment of the invention, a pass- 
word entry process is carried out during a secure 
power-up procedure. At some point during the secure 
power-up procedure, the computer system checks for 
the presence of an external token or smart card that is 
coupled to the computer through specialized hardware. 
The token or smart card is used to store an encryption 
algorithm furnished with an encryption key that is 
unique or of limited production. 

Following detection of the external token, the com- 
puter user is required to enter a plain text user pass- 
word. Once entered, the user password is encrypted 
using the encryption algorithm (or a one-way hash func- 
tion) contained in the external token, thereby generating 
a "network" password. The network password is main- 
tained in a secure memory space such as System Man- 
agement Mode (SMM) memory. When the user desires 
to access a network resource such as a hard drive in a 
server, the network password is encrypted and commu- 
nicated over the network. In the case of a server hard 
drive, the network password is encrypted using the 
server's public key (or another key that is known to the 
server). Optional session key or node identification 
information is appended to the network password prior 
to communication over the network. The node identifi- 
cation information can be used for a variety of purposes, 
including limiting access to certain pieces of data to 
specified users on specified machines. 

Once received by the server, the encrypted network 
password is decrypted using the server's public key. A 
user verification process is then performed on the net- 
work password to determine which, if any, access privi- 
leges have been accorded the network user. As an 
example, access to certain pieces of data can be limited 
to a specified user on a specified network node. Numer- 
ous other uses are contemplated for the network pass- 
word. The password can be utilized: to decrypt or 



encrypt data on the server hard drive (similar to a ses- 
sion key), as part of a public key/private key pair, or as 
part of a split key or forced key pair. Such uses permit 
the server hard drive(s) or other network resources to 

5 be securely compartmentalized with the option to have 
multiple user levels. 

In an alternate embodiment of the invention, entry 
of the user password and encryption by the token is 
conducted during normal computer operation outside of 

10 the secure power-on sequence, tn this embodiment of 
the invention, the user password is entered by means of 
a secure keyboard communications channel. Again, the 
network password is maintained in either secure system 
memory or in a secured resource such as a hard drive. 

75 In any of the various embodiments of the invention, the 
two-piece nature of the authentication process assures 
that if either the user password or the external token is 
stolen, it is of little value. Both pieces are required to 
access protected resources and uniquely identify a user 

20 to the network. Further, a network user's identity is 
maintained when working on different machines. 

A better understanding of the present invention can 
be obtained when the following detailed description of 
the preferred embodiment is considered in conjunction 

25 with the following drawings, in which: 

Figure 1 is a schematic block diagram of a compu- 
ter system incorporating capabilities for two-piece 
user authentication according to the present inven- 

30 tion; 

Figure 2 is a schematic block diagram of a local 
area network illustrating secure user authentication 
and remote peripheral access according to the 
present invention; 

35 Figure 3 is graphical representation of System 
Management Mode memory according to the 
present invention; and 

Figures 4A and 4B are flowchart diagrams illustrat- 
ing a two-piece procedure according to the present 
40 invention for entering password information during 
a secure power-up procedure. 

The following patents and applications are refer- 
enced in the text which follows: 

45 

Our US Patent No. 5,537,540, entitled "TRANS- 
PARENT, SECURE COMPUTER VIRUS DETEC- 
TION METHOD AND APPARATUS", is hereinafter 
referred to as the "SAFESTART patent"; 

so Our US Patent Application Serial No. 08/396,343, 
entitled, "SECURITY CONTROL FOR A PER- 
SONAL COMPUTER," filed on March 3. 1995; 
Our US Patent No. 5,375,243, entitled "HARD DISK 
PASSWORD SECURITY SYSTEM"; 

ss Our US Patent Application Serial No. 08/657,982, 
entitled "METHOD AND APPARATUS FOR PRO- 
VIDING SECURE AND PRIVATE KEYBOARD 
COMMUNICATIONS IN COMPUTER SYSTEMS", 
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filed on May 29, 1996; and 
Our US Patent Application Serial No. 08/766,721. 
entitled "A METHOD AND APPARATUS FOR 
ALLOWING ACCESS TO SECURED COMPUTER 
RESOURCES BY UTILIZING A PASSWORD AND 
EXTERNAL ENCRYPTION ALGORITHM", filed on 
December 13, 1996. 

Referring first to Figure 1 , a computer system S 
according to the present invention is shown. In the pre- 
ferred embodiment, the system S incorporates two pri- 
mary buses: a Peripheral Component Interconnect 
(PCI) bus P which includes an address/data portion and 
a control signal portion; and an Industry Standard Archi- 
tecture (ISA) bus I which includes an address portion, a 
data portion, and a control signal portion. The PCI and 
ISA buses P and I form the architectural backbone of 
the computer system S. 

A CPU/memory subsystem 100 is connected to the 
PCI bus P. The processor 102 is preferably the Pen- 
tium® processor from Intel Corporation, but could be an 
80466 or any number of similar or next-generation proc- 
essors. The processor 102 drives data, address, and 
control portions 116, 106, and 108 of a host bus HB. A 
level 2 (L2) or external cache memory 104 is connected 
to the host bus HB to provide additional caching capa- 
bilities that improve the overall performance of the com- 
puter system S. The L2 cache 104 may be permanently 
installed or may be removable if desired. A cache and 
memory controller 110 and a PCI-ISA bridge chip 130 
are connected to the control and address portions 108 
and 106 of the host bus HB. The cache and memory 
controller chip 1 10 is configured to control a series of 
data buffers 112. The data buffers 112 are preferably 
the 82433LX from Intel, and are coupled to and drive 
the host data bus 1 16 and a MD or memory data bus 
118 thai is connected to a memory array 1 14. A mem- 
ory address and memory control signal bus is provided 
from the cache and memory controller 110. 

The data buffers 112, cache and memory controller 
110, and PCI-ISA bridge 130 are all connected to the 
PCI bus P. The PCI-ISA bridge 130 is used to convert 
signals between the PCI bus P and the ISA bus I. The 
PCI-ISA bridge 130 includes: the necessary address 
and data buffers, arbitration and bus master control 
logic for the PCI bus P, ISA arbitration circuitry, an ISA 
bus controller as conventionally used in ISA systems, 
an IDE (intelligent drive electronics) interface, and a 
DMA controller. A hard disk drive 140 is connected to 
the IDE interface of the PCt-ISA bridge 130. Tape 
drives, CD-ROM devices or other peripheral storage 
devices (not shown) can be similarly connected. 

In the disclosed embodiment, the PCI-ISA bridge 
130 also includes miscellaneous system logic. This mis- 
cellaneous system logic contains counters and activity 
timers as conventionally present in personal computer 
systems, an interrupt controller for both the PCI and ISA 
buses P and I, and power management logic. Addition- 



ally, the miscellaneous system logic may include cir- 
cuitry for a security management system used for 
password verification and to allow access to protected 
resources as described more fully below. 

5 The PCI-ISA bridge 130 also includes circuitry to 
generate a "soft" SMI (System Management Interrupt), 
as well as SMI and keyboard controller interface cir- 
cuitry. The miscellaneous system logic is connected to 
the flash ROM 154 through write protection logic 164. 

io Separate enable/interrupt signals are 'also communi- 
cated from the PCI-ISA bridge 130 to the hard drive 
140. Preferably, the PCI-ISA bridge 130 is a single inte- 
grated circuit, but other combinations are possible. 
A series of ISA slots 134 are connected to the ISA 

75 bus I to receive ISA adapter cards. A series of PCI slots 
142 are similarly provided on the PCI bus P to receiv 
PCI adapter cards. 

A video controller 165 is also connected to the PCI 
bus P. Video memory 166 is used to store graphics data 

20 and is connected to the video graphics controller 165 
and a digital/analog converter (RAMDAC) 168. The 
video graphics controller 165 controls the operation of 
the video memory 166, allowing data to be written and 
retrieved as required. A monitor connector 169 is con- 

25 nected to the RAMDAC 168 for connecting a monitor 
170. 

A network interface controller (NIC) 122 is also con- 
nected to the PCI bus P. allowing the computer system 
S to function as a "node" on a network. Preferably, the 

30 controller 122 is a single integrated circuit that includes 
the capabilities necessary to act as a PCI bus master 
and slave, as well as circuitry required to act as an 
Ethernet interface. Attachment Unit Interface (AUI) and 
1 0 base-T connectors 1 24 are provided in the system S, 

35 and are connected to the NIC 122 via filter and trans- 
former circuitry 126. This circuitry forms a network or 
Ethernet connection for connecting the computer sys- 
tem S to a distributed computer environment or local 
area network (LAN) as shown in Figure 2. 

40 A combination I/O chip 136 is connected to the ISA 
bus I. The combination I/O chip 136 preferably includes 
a real time clock, two UARTS, a floppy disk controller f r 
controlling a floppy disk drive 138, and various address 
decode logic and security logic to control access to an 

45 internal or external CMOS/NVRAM memory (not 
shown) and stored password values. Further details of 
contemplated uses of the NVRAM memory are pro- 
vided below. Additionally, a control line is provided to th 
read and write protection logic 164 to further control 

so access to the flash ROM 154. Serial port connectors 
146 and parallel port connector 132 are also connected 
to the combination I/O chip 1 36. 

An 8042, or keyboard controller, is also included in 
the combination I/O chip 136. The keyboard controller is 

55 of conventional design and is connected in turn to a key- 
board connector 158 and a mouse or pointing device 
connector 160. A keyboard 159 is connected to the 
computer system S through the keyboard connector 
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158. 

A buffer 1 44 is connected to the ISA bus I to provide 
an additional X-bus X for various additional components 
of the computer system S. A flash ROM 1 54 receives its 
control, address and data signals from the X-bus X. 
Preferably, the flash ROM 154 contains the BIOS infor- 
mation for the computer system and can be repro- 
grammed to allow for revisions of the BIOS. 

In the disclosed embodiment, the computer system 
S contains circuitry for communicating with a removable 
cryptographic token 188. The precise physical nature of 
the token 1 88 is not considered critical to the invention. 
The token can take many forms, such as a Touch Mem- 
ory™ device supplied by Dallas Semiconductor, Inc., a 
smart card, or an encryption card. Preferably, the token 
188 is easily decoupled from the computer system S 
and easily transportable by the token bearer. The token 
1 88 contains at least one of a variety of encryption algo- 
rithms (such as DES, Blowfish, elliptic curve-based 
algorithms, etc.). Although the base algorithm can be 
the same in each token 188, it is preferable that the 
encryption key be different in each token 188. Ideally, 
the token 1 88 is capable of communicating digitally with 
the computer system S during momentary contact with 
or proximity to the computer system S. The token 1 88 of 
the disclosed embodiment is capable of storing the 
encryption algorithm in a non-volatile manner and can 
be permanently write-protected to discourage tamper- 
ing. 

In the disclosed embodiment of the invention, the 
circuitry used for establishing a communication link 
between the token 188 and the computer system S con- 
sists of a probe 186 connected to a COM or serial port 
adapter 184. The port adapter 184 is connected to the 
RS232 connector 146. Alternatively, the port adaptor 
184 could interface with an application specific inte- 
grated circuit (ASIC). In operation, the token 188 is 
detachably received by the probe 186. The probe 186 
includes circuitry for reading and writing memory in the 
token 1 88, and can be fully powered through the RS232 
connector 146. In addition, the probe 186 includes pres- 
ence detector circuitry for ascertaining the presence of 
a token 188. 

An additional feature of the computer system S is a 
System Management Mode (SMM), as discussed at 
length below in conjunction with Figure 3. It is also 
noted that Figure 1 presents an exemplary embodiment 
of the computer system S and it is understood that 
numerous other effective embodiments could readily be 
developed as known to those skilled in the art. 

Referring now to Figure 2, a distributed access 
environment illustrating secure user authentication and 
remote peripheral access according to the present 
invention is shown. Two-piece entry of a user password 
at a network node 200 results in a network password 
that is securely distributed to over the network to allow 
access to remote peripherals. In the disclosed embodi- 
ment, the secured remote peripheral takes the form of 



networked hard drives 216, 218 and 220, although 
access to any secured network resource falls within the 
scope of the invention. 

The user authentication process occurs similarly in 

5 each network node 200, and the description of the proc- 
ess for a single node 200a is provided for sake of clarity. 
In the disclosed embodiment of the invention, a pass- 
word entry process is carried out during a secure 
power-up procedure or other secure mode of operation 

10 as detailed more specifically in conjunction'with Figures 
4A and 4B. During the secure power-up procedure, the 
computer system S checks for the presence of an exter- 
nal cryptographic token or smart card 1 88a that is used 
to store an encryption algorithm furnished with a unique 

75 encryption key and optional identification information. 

Following detection of the external token 188a, the 
computer user is required to enter a plain text user 
password. Once entered, the user password is 
encrypted using an encryption algorithm contained in 

20 the external token 1 88a, thereby generating a "network" 
password. Alternatively, the external token 188a can 
generate the network password by performing a one- 
way hash function on the user password. In either case, 
the network password is maintained in a secure mem- 

25 ory space such as SMM memory 250 (see Figure 3). 
When the user desires to access a network resource 
such as a hard drive in a server 201. the network pass- 
word is appended with an optional session key, the 
user's public key. or node identification information 

30 204a. The node identification information can be used 
for a variety of purposes, including limiting access to 
certain pieces of data to specified users on specified 
machines. The network password and node information 
are then encrypted by an encryption algorithm 206a. 

35 The encryption algorithm 206a can take many 
forms, including all of the aforementioned algorithms. If 
a public key/private key algorithm is used, the network 
server's public key (or any key that is known only to the 
server) is used with encryption algorithm 206a. TTie dis- 

40 closed encryption scheme allows the encrypted net- 
work password to be communicated over an unsecured 
network in such a manner that it is only decipherable by 
the targeted network server 201 . 

Following encryption with the server's public key, 

45 the encrypted network password it communicated to the 
network server 201 via network interface controllers 
122a and 122d The encrypted network password is 
then decrypted (at element 210) with the server's pri- 
vate key to retrieve the network password. After the net- 
so work password and any optional session key or node 
identification information has been decrypted, it is for- 
warded to a verification process 212 to determine the 
user's access privileges to hard drives 216, 218, and 
220. 

55 The verification process can take many forms, 
including an indexed look-up table in which multiple net- 
work passwords (in conjunction with any node identrfi- 
. cation information) are granted the same or a variety of 
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access privileges. Numerous other uses are contem- 
plated tor the network password. For example, the pass- 
word or any appended session keys can be utilized to 
decrypt or encrypt data on one of the hard drives 216- 
220 through interface circuitry 214, or as an enablement 
signal to a password protected device such as the disk 
drive described in our US-A-5,375,243. 

A one-way hash function or an encryption algorithm 
can also be used to convert the network password into 
a pseudo-random seed (intermediate key). The pseudo- 
random seed could then be used by a deterministic sys- 
tem to generate a public-key/private-key key pair A com- 
mon cryptographic algorithm used to generate such 
keys is DES, but many other algorithms suffice. 

As mentioned, optional keys such as a session key 
or the user's public key can be appended to the network 
password prior to its transmission over the network. 
When an appended session key is provided to the net- 
work server 201 , subsequent communications between 
the network node 200a and the network server 201 are 
encrypted with a symmetric algorithm using the session 
key. Encryption and decryption with symmetric algo- 
rithms is typically much faster than encryption and 
decryption with public key algorithms. 

Alternatively, the network password could be con- 
figured as a subset of a current "super key" by using 
split key technology. Split key technology refers gener- 
ally to the process of "splitting" a master key and distrib- 
uting the portions such that access is contingent upon 
the presence of different portions. For example, the net- 
work server 201 can maintain one piece of the adminis- 
trative super key and require that a valid network 
password (the other portion of the split key) be 
appended before access privileges are granted. The 
administrative super key can be broken up in different 
ways, such that multiple network users having different 
user passwords and unique tokens 188 can access the 
same secured network resource. The administrative 
super key can be altered to encompasses additional 
network passwords as the need arises. Further details 
of split key technology can be found in US Patent Nos. 
5,276,737 and 5,315,658 entitled "FAIR CRYPTOSYS- 
TEMS AND METHODS FOR USE". 

It is also contemplated that the tokens 188 them- 
selves can incorporate identification information in addi- 
tion to the encryption algorithm, allowing users to have 
different tokens for different activities - much like a per- 
son having checking and saving accounts that are 
accessible by the same personal identification number 
(PIN). Further, the NIC 122a is capable of appending 
node identification information to the encrypted network 
password. 

Such uses of the disclosed two-piece user authen- 
tication process permit the server hard drives 216-220 
or other network resources to be securely compartmen- 
talized with the option to have multiple user levels. This 
arrangement has many potential applications. For 
example, a company might not want certain documents 



to be downloaded outside facility. The invention allows 
access privileges to be limited to specified nodes 200 
within the facility, proving an additional level of security. 

5 The System Management Mode 

Referring now to Figure 3, certain microprocessors, 
such as the Pentium® processor from Intel Corporation, 
include a mode referred to as System Management 

10 Mode (SMM), which is entered upon recfeipt of a system 
management interrupt (SMI). Originally, SMIs were 
power management interrupts devised by Intel Corpora- 
tion for portable systems. Portable computers often 
draw power from batteries which provide a limited 

75 amount of energy. To maximize battery life, an SMI is 
typically asserted to turn off or reduce the power to any 
system component that is not currently in use. Although 
originally meant for laptop computers, SMIs have 
become popular for desktop and other stationary mod- 

20 els as well. 

SMIs are asserted by either an SMI timer, by a sys- 
tem request, or by other means. An SMI is a non-mask- 
able interrupt having almost the highest priority in th 
system. Only the reset signal R/S* and cache flush sig- 

25 nal FLUSH*, which can be conceptualized as interrupts, 
have a higher priority than the SMI. When an SMI is 
asserted, a microprocessor maps a portion of memory 
referred to as SMM memory 250 into the main memory 
space. The entire CPU state is then saved in the SMM 

30 memory 250 (in the CPU register dump 260 of Figure 3) 
in stack-like, last in/first out fashion. After the initial proc- 
essor state is saved, the processor 102 begins execut- 
ing an SMI handler routine 252, which is an interrupt 
service routine to perform specific system management 

35 tasks such as reducing power to specific devices or, as 
in the case of the present invention, providing security 
services. While the routine is executed, other interrupt 
requests are not serviced, and are ignored until the 
interrupt routine is completed or the microprocessor is 

40 reset. When the SMI handler 252 completes its task, the 
processor state is retrieved from the SMM memory 250. 
and the main program continues. An SMI active signal 
referred to as the SMIACT* signal is provided by the 
processor to indicate operation in SMM. 

45 As mentioned, following assertion of its SMI input 
(this is generally an active low signal), the processor 
102 calls the SMI handler 252, which addresses an 
address space that is separate from ordinary main 
memory. Thereafter, all memory accesses refer only t 

so SMM memory 250. Input/output ("I/O") accesses via 
instructions such as IN or OUT are still directed to the 
normal I/O address space, however. One advantageous 
side-effect of the hardwired separate address SMM 
area is that the routines stored in this space cannot be 

55 snooped by the cache, providing an additional layer of 
protection. 

In a typical system management mode implemen- 
tation, it is intended that battery-backed SRAM chips be 
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mapped into the address space between 30000h and 
3ffffh by default. External hardware can use the SMI- 
ACT* signal as a chip select signal and thereby address 
either the SRAM chips (the SMIACT* signal is at a logic 
low level), or the normal main memory (the SMIACT* 5 
signal is at a logic high level). By using the SMIACT* 
signal, then, SMM memory 250 and normal memory 
can be strictly separated. 

Referring more specifically to Figure 3, a graphical 
representation of SMM memory 250 as configured 10 
according to the present invention is shown. As men- 
tioned above, this address space is addressed by the 
processor 102 following an SMI. Following an SMI, the 
state of the processor 102 is stored in the CPU register 
dump 260. The SMI handler 252 is then called and exe- 15 
cuted by the processor 102. Importantly, the SMI han- 
dler 252 can be written such that it performs tasks other 
than power-down operations. An SMI handler 252 writ- 
ten according to the present invention is able to utilize 
the encrypted user password (network password) 254, 20 

ncryption keys 256, and an encryption algorithm 258 
to securely perform encryption operations that allow a 
user's identity to be verified over a LAN. Because SMM 
memory 250 is only addressable while the computer 
system is in SMM, storing the encrypted user password 25 
254. encryption keys 256 and encryption algorithm 258 
in SMM memory 250 prevents malicious code from 
modifying or reading these sensitive components of the 
disclosed embodiment of the invention. The optional 32- 
Kbyte SMM RAM extension 262 can be utilized for 30 
securely performing encryption functions or to store 
additional encryption keys. 

Referring now to Figure 4A and 46, an exemplary 
power-on sequence incorporating two-piece user verifi- 
cation according to the invention is shown. The 35 
sequence builds upon a secure power-up procedure, 
such as that described in the SAFESTART patent- 
Briefly, this invention reduces the administrative require- 
ments of earlier secure power-on techniques. A 
reserved non-DOS hard disk partition is used to pre- 40 
boot the computer system S and provide a secure envi- 
ronment from which to verify files. Upon power-up or 
reset, the computer performs the power -on self test 
(POST), during which it checks a SAFESTART track by 
comparing its hash value to a value stored in NVRAM. If 45 
the integrity of the SAFESTART track is verified, the first 
"SAFESTART" routine is loaded into memory and exe- 
cuted. 

The SAFESTART routine first checks the master 
boot record and boot sectors of the hard disk. This veri- so 
f ication captures a large majority of viruses and is per- 
formed before any code residing in those areas is 
executed, thus preventing the spread of any discovered 
viruses. Further checks are performed on SAFESTART 
files before each is executed. Eventually, system files 55 
and any additional designated user files are verified. 
Since the computer system was booted from an atypical 
partition, the drives are remapped to account for the 
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shift in logical disk drive addressing. When the verifica- 
tion process is completed, SAFESTART files are 
cleaned up, a latch is set to prevent unauthorized modi- 
fication of the initial hash values, and control is returned 
to the BIOS to boot the user operating system. Thus, a 
computer system implemented according to the SAFE- 
START patent insures that designated software and 
passwords are trustworthy following a power-up cycle. 

As shown in Figure 2A, when power to the compu- 
ter system S is initially applied or the system undergoes 
a cold restart, the POWER-ON sequence 300 is com- 
menced. In the first step 302 of the POWER-ON 
sequence 200 the computer system S begins executing 
from BIOS ROM. The BIOS is preferably stored in flash 
ROM 154 and contains low level programming for boot- 
ing the operating system, and an interrupt handler for 
accessing the hard drive 140. Control then proceeds to 
step 304 where the computer system S performs a 
power-on serf test (POST) to determine if all system 
hardware is operating properly. 

Following additional power-on steps (optional), con- 
trol next proceeds to step 306 for commencement of a 
secure power-up procedure such as that described in 
the SAFESTART patent. In the preferred embodiment, 
operating sequences for the secure power-up proce- 
dure are configured as an option ROM and located in 
the option ROM address space in a conventional man- 
ner. Preferably, the operating sequences are provided 
as the last option ROM in order to allow any other option 
ROM's to be installed at the outset. The system BIOS 
executes this portion of the secure power-on sequence 
as a part of its scan for option ROMs, which are exe- 
cuted when encountered in POST This arrangement 
requires address decoding for the power-on sequence, 
but also simplifies distribution into a family of computer 
systems. Alternatively, the power-on sequence could be 
implemented as a direct call from the BIOS, rather than 
an option ROM call. 

Control next proceeds to step 308 to determine if a 
token 1 88 containing an encryption algorithm is 
present. If the aforementioned presence detection cir- 
cuitry determines that a token is not present, control 
loops to step 310 to display a message requesting that 
the user provide a token 188. When a token 188 is 
present as determined in step 308, control passes to 
step 312 where the user is prompted to enter a plain tea 
user password. As an alternative to a memorized value, 
the plain text password could be generated with the aid 
of biometrics. For example, a scanned fingerprint could 
be converted into a plain text password value. It is noted 
that the precise ordering of steps 308-312 is not consid- 
ered critical to the invention. 

Control next proceeds to step 31 4 of Figure 4B and 
the user password is encrypted using the encryption 
algorithm provided by the external token 188. The 
encrypted plain text password effectively becomes the 
network password. The encryption algorithm that is uti- 
lized by the token 188 can take many forms, including 
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DES, RSA, DSA, RC2, RC4, Blowfish, IDEA, 3-WAY, 
and MDC among others. Ideally, the algorithm in each 
token 188 is enabled by an encryption key that is unique 
or of limited production, such that it is impractical or 
impossible to circumvent the verification process by 
using a substitute token. 

It is contemplated that the actual encryption proc- 
ess could be carried out by the token 188 itself. In this 
embodiment of the invention, the user password is 
transmitted to the token 188 through the RS232 con- 
nector 146 or alternate connection port. The token 188 
then performs the encryption function using its stored 
encryption algorithm and associated encryption key. 
Following the encryption process, the encrypted pass- 
word is returned to the computer system S via the 
RS232 connector 146. 

In an alternate embodiment of the invention, the 
encryption algorithm is downloaded into computer 
memory. After the user password has been entered, the 
encryption function is then performed by the computer 
system S. In this embodiment of the invention, it is desir- 
able that the encryption algorithm be erased from the 
computer memory after completion of the encryption 
process and while the computer system S is still in the 
secure power-on period. This step prevents the encryp- 
tion algorithm from being surreptitiously obtained from 
memory following the secure power-on period- 
Following creation of the network password, control 
proceeds to step 316 and optional node identification 
information (or a session key) is appended. As men- 
tioned above, node identification information allows the 
network server 201 to determine which node is being 
utilized and grant access privileges accordingly. The 
optional node identification information can be 
appended prior to the encryption process of step 314. In 
either case, control next proceeds to step 318 and the 
network password and any appended node identifica- 
tion information are stored in secure memory such as 
SMM memory 250. The network password could also 
be maintained in protected/locked NVRAM or Flash 
ROM 154, or in some other secure memory such as that 
disclosed in the previously referenced US patent appli- 
cation serial no. 08/396343. Following this step, control 
proceeds to step 320 and the secure power-up proce- 
dure is continued. 

It should be observed that in each of the embodi- 
ments of the invention described above, the user 
authentication or password verification process is two- 
piece in nature. If either the user password or the exter- 
nal token is misappropriated, it is of little value. Both 
pieces are required to generate the network password. 
In addition, the scope of the invention not considered to 
be limited to the disclosed secure power-up procedure. 
Likewise, the precise ordering of the power-up steps is 
not considered critical to the invention! 

In one alternate embodiment of the invention, the 
two-piece authentication process is conducted during 
normal computer operation outside of the secure 



power-on sequence. In this embodiment of the inven- 
tion, the user password is communicated to secure 
memory by means of a secure keyboard communica- 
tions channel such as that described in previously refer- 

5 enced US patent application no. 08/657982. Briefly, a 
request for secure keyboard communications causes 
the computer's processor to enter into SMM. The SMI 
handler then directs specialized hardware to intercept 
and divert keyboard interrupts, such that data entered 

io via the keyboard is only communicated to secure, non- 
readable memory. The secured keyboard communica- 
tions channel prevents the user's plain text password 
from being intercepted by malicious software code, 
such as a virus masquerading as a screen saver or 

is device driver. 

Thus, a method has been described for permitting 
secure user authentication and remote peripheral 
access based upon a two-piece user verification proc- 
ess. In the disclosed embodiment of the invention, th 

20 user verification process begins during a secure power- 
up procedure. At some point during the secure power- 
up procedure, the computer user is required to provide 
an external token or smart card: The token or smart 
card is used to store an encryption algorithm furnished 

25 with an encryption key that is unique or of limited pro- 
duction. The computer user is then required to enter a 
plain text user password. Once entered, the user pass- 
word is encrypted using the encryption algorithm con- 
tained in the external token to create a network 

30 password. When the network user desires to access a 
secured network resource, the network password is 
then encrypted using the network server's public key 
before being communicated over the network. Once 
received by the server, the encrypted network password 

as is decrypted using the server's public key. A user verifi- 
cation process is then performed on the network pass- 
word to determine which, if any, access privileges have 
been accorded the network user. Optional node identifi- 
cation information can be appended to the network 

40 password to provide additional levels of access. The 
two-piece nature of the authentication process assures 
that if either the user password or the external token is 
stolen, it is of little value. Both pieces are required to 
access protected resources and uniquely identify a user 

45 to the network 

The foregoing disclosure and description of th 
invention are illustrative and explanatory thereof, and 
various changes in the size, shape, materials, compo- 
nents, circuit elements, wiring connections and con- 

so tacts, as well as in the details of the illustrated circuitry 
and construction and method of operation may be made 
without departing from the spirit of the invention. 

Claims 

55 

1. A method for securely authenticating user identity 
in a computer network including a network server 
coupled to at least one network node capable of 
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communicating with an external token that includes 
a cryptographic algorithm and an encryption key, 
the network node further incorporating a secure 
power-up procedure or other secure operating 
mode, the method comprising the steps of: 

providing a user password to the network node; 
communicatively coupling the external token to 
the network node; 

providing the user password to the crypto- 
graphic algorithm stored in the token; 
encrypting the user password with the crypto- 
graphic algorithm and the encryption key to 
produce a network password; 
communicating the network password to the 
network server; and 

comparing the network password or portions 
thereof to information maintained by the net- 
work server in order to verify user identity 
and/or determine network privileges accorded 
to the network password. 

2. The method of claim 1 f further comprising the step 
of: 

enabling or blocking access to a secured net- 
work resource in response to the result of said 
step of comparing the network password to 
information maintained by the network server. 

3. The method of claim 1, wherein said step of ena- 
bling or blocking access to a secured network 
resource comprises utilizing the network password 
to govern the encryption and decryption of speci- 
fied data maintained in the network server. 

4. The method of claim 1 , wherein said step of provid- 
ing a user password to the network node is per- 
formed while the network node is in a secure period 
of operation. 

5. The method of claim 4, wherein the secure period 
of operation includes a secure power-up procedure. 
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of appending node identification information to the 
network password prior to communicating the net- 
work password to the network server. 

8. The method of claim 7, wherein said step of com- 
paring the network password or portions thereof to 
information maintained by the network server 
includes limiting access to specified data based 
upon the network password and appended node 
identification information. 

9. The method of claim 1, wherein said step of 
encrypting the user password with the crypto- 
graphic algorithm and the encryption key occurs in 
the token. 

10. The method of claim 1 , wherein said step of provid- 
ing the user password to the cryptographic algo- 
rithm comprises downloading both the 
cryptographic algorithm and the user password to 
secure computer memory, and wherein said step of 
encrypting the user password with the crypto- 
graphic algorithm and the encryption key occurs in 
secure computer memory. 

11. The method of claim 1. wherein the network pass- 
word is maintained in secure memory space within 
the network node. 



30 
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1 2. The method of daim 1 , wherein the token is a smart 
card. 



13. The method of claim 1 
Touch Memory™ device. 



wherein the token is a 



6. The method of claim 1 , further comprising the steps 
of: 

prior to said step of communicating the network 
password to the network server, encrypting the 
network password using a network public key; 
and 

following said step of communicating the net- 
work password to the network server, decrypt- 
ing the network password using a network 
private key corresponding to the network public 
key. 

7. The method of claim 1 , further comprising the step 



14, The method of claim 1, wherein the encryption key 
is unique or of limited production. 

15. A computer system capable of securely providing 
40 two-piece user authentication data over a computer 

network, the computer system including capabilities 
for operating in conjunction with an external token 
containing a cryptographic algorithm and an 
encryption key, and further having a secure power- 
45 on process or other secure operating mode, the 
computer system comprising: 

a system bus; 

a processor coupled to said system bus; 
so token interface circuitry coupled to said proces- 

sor for communicating with the external token; 
network interface circuitry allowing said proc- 
essor to direct communications to a network 
server; and 

55 security code stored in a processor readable 

medium for causing the processor to perform 
the steps of: 
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receiving a user password; 

providing the user password to the external 

token; 

receiving a network password from the 
external token, wherein the network pass- s 
word is an encrypted version of the user 
password; and 

communicating the network password to 
the network server via said network inter- 
face circuitry in order to allow the computer 10 
user to access secured network resources. 

16. The computer system of claim 15, wherein said 
security code is executed while the computer sys- 
tem is in a secure operating mode. 15 

17. The computer system of claim 15 t wherein said 
secure operating mode is a secure power-on proce- 
dure. 

18. The computer system of claim 15, wherein said 
security code further causes said processor to 
encrypt the network password using the network 
server's public key prior to said step of communicat- 
ing the network password to the network server. 

19. The computer system of claim 15, wherein said 
security code further causes said processor to 
append node identification information to the net- 
work password prior to said step of communicating 30 
the network password to the network server. 

20. The computer system of claim 15, wherein the 
external token is a smart card. 

35 

21. The computer system of claim 15, wherein the 
external token is a Touch MemoryTM device. 

22. The computer system of claim 15, wherein the 
encryption key is unique or of limited production. 40 
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(54) Secure two-piece user authentication in a computer network 



(57) A computer system according to the present 
invention utilizes a two-piece authentication procedure 
to securely provide user authentication over a network. 
In the disclosed embodiment of the invention, a user 
password is entered during a secure power-up proce- 
dure. The user password is encrypted by an external 
token or smart card that stores an encryption algorithm 
furnished with an encryption key that is unique or of lim- 
ited production. A network password is thereby created. 
The network password is maintained in a secure mem- 
ory space such as System Management Mode (SMM) 
memory. When the user desires to access a network 
resource such as a hard drive in a server, the network 
password is encrypted and communicated over the net- 
work. In the case of a server hard drive, the network 
password is encrypted using the server's public key (or 
another key that is known to the server). Optional node 
identification information is appended to the network 
password prior to communication over the network. The 
node identification information can be used for a variety 
of purposes, including limiting access to certain pieces 
of data to specified users on specified machines. Once 
received by the server, the encrypted network password 
is decrypted using the server's public key. A user verifi- 
cation process is then performed on the network pass- 
word to determine which, if any, access privileges have 
been accorded the network user. Numerous other uses 
for the network passw rd are disclosed, and permit the 
network resources to be securely compartmentalized 



with the option to have multiple user levels. The two- 
piece nature of the authentication process assures that 
if either the user password or the external token is sto- 
len, it is of little value. Both pieces are required to 
access protected resources and uniquely identify a user 
to the network. Further, a network user's identity is 
maintained when working on different machines. 
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